$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146185.roa File: AS146185.roa (raw, json) Hash identifier: ghtKNZvF9uHH8sA8RrRk4BZJiYxJjY/HtvMBBa6Ley0= Subject key identifier: 51:A4:02:14:A8:71:8B:A3:1B:5B:7B:F7:A3:CE:BF:AA:8B:B7:37:FA Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 280DC00B853A53402D53DF381E743C7DD09665F6 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146185.roa Signing time: Wed 04 Mar 2026 06:34:35 +0000 ROA not before: Wed 04 Mar 2026 06:29:35 +0000 ROA not after: Wed 03 Mar 2027 06:34:35 +0000 asID: 146185 IP address blocks: 240a:adcf::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:0d:c0:0b:85:3a:53:40:2d:53:df:38:1e:74:3c:7d:d0:96:65:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:35 2026 GMT Not After : Mar 3 06:34:35 2027 GMT Subject: CN=51A40214A8718BA31B5B7BF7A3CEBFAA8BB737FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:64:83:b0:6a:59:78:71:35:fd:4f:e5:fd:9b: 39:4b:95:b2:14:fb:f8:ed:3f:84:77:0d:14:ee:a2: 2b:f6:7a:0e:3e:32:fb:03:09:e5:74:b5:bd:30:d2: 9b:7c:43:ef:e3:24:a4:41:73:65:85:5b:aa:d2:d4: 80:92:de:2e:98:d6:70:e3:ab:2a:14:c2:de:09:f7: f3:69:ec:c1:ae:67:2d:ee:40:2e:44:33:73:9f:75: 8e:bd:70:ba:a5:35:04:c0:12:56:ea:19:a1:db:52: 3b:35:18:aa:73:b1:92:4d:d4:b7:84:98:bf:70:b9: 14:48:1a:f2:a5:85:3e:51:7d:05:b8:da:20:a1:76: 75:2c:ac:3e:03:88:22:bb:43:c1:b9:84:0e:44:24: 32:a0:16:7c:1d:60:d6:25:a7:68:63:d1:14:7c:94: a6:40:95:33:24:48:cc:10:1b:6f:f3:2b:b7:5e:7c: b1:46:2c:80:b2:4d:4a:75:a8:f2:99:73:e3:0c:e7: e7:63:f6:43:83:a1:3b:b0:50:04:81:cc:24:d8:ab: d4:09:db:b7:81:43:be:e3:a3:27:96:c6:88:96:38: db:3d:d3:5d:dc:b2:03:14:0b:c9:45:f5:04:72:2c: 85:a9:09:65:bf:b0:55:5d:79:37:39:be:d6:7c:3d: 2a:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:A4:02:14:A8:71:8B:A3:1B:5B:7B:F7:A3:CE:BF:AA:8B:B7:37:FA X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146185.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:adcf::/32 Signature Algorithm: sha256WithRSAEncryption 8a:43:4b:ed:cf:01:e0:33:d4:72:a4:da:59:1f:63:7f:c6:83: e6:a9:50:2c:30:fe:1c:4b:5c:d9:47:98:83:cd:02:31:10:43: 8d:4d:fc:bb:c0:cf:a1:c4:82:cb:62:e8:a9:1d:40:41:8f:c6: da:07:48:48:2e:66:c4:df:e1:97:e5:3f:6d:62:b6:1e:54:48: 42:ed:35:65:72:b4:d0:d1:38:72:2b:c6:2f:6f:1a:2d:fc:33: 08:ba:70:4e:3c:f8:71:83:b4:82:c8:a6:1f:20:57:fe:5f:1f: d4:82:14:5f:6a:aa:7b:be:b7:b9:98:ff:c6:14:db:7d:95:17: f9:fc:37:4e:46:87:4a:83:93:b1:7a:9e:6f:1f:95:8f:b7:e0: cc:ab:85:6f:e6:4d:4b:6f:84:f1:3d:c3:d0:4e:21:56:7c:00: 72:94:a9:2e:13:8e:3d:75:93:3d:c8:ae:2e:27:5a:d2:60:5d: 4e:ce:92:f1:41:3e:cd:bc:5f:9a:41:9b:51:9e:3e:eb:47:b6: 5e:e3:43:3a:2a:ea:19:a3:4f:27:91:59:5c:bb:ad:47:75:5a: 27:41:ab:d7:02:c3:dd:e0:dc:66:f6:d8:a2:6d:a0:06:8c:c7: ba:88:66:d0:9b:82:16:0a:4f:a3:96:e5:6a:a0:14:17:45:88: 03:f6:09:16 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUKA3AC4U6U0AtU984HnQ8fdCWZfYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjkzNVoX DTI3MDMwMzA2MzQzNVowMzExMC8GA1UEAxMoNTFBNDAyMTRBODcxOEJBMzFCNUI3 QkY3QTNDRUJGQUE4QkI3MzdGQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL1kg7BqWXhxNf1P5f2bOUuVshT7+O0/hHcNFO6iK/Z6Dj4y+wMJ5XS1vTDS m3xD7+MkpEFzZYVbqtLUgJLeLpjWcOOrKhTC3gn382nswa5nLe5ALkQzc591jr1w uqU1BMASVuoZodtSOzUYqnOxkk3Ut4SYv3C5FEga8qWFPlF9BbjaIKF2dSysPgOI IrtDwbmEDkQkMqAWfB1g1iWnaGPRFHyUpkCVMyRIzBAbb/Mrt158sUYsgLJNSnWo 8plz4wzn52P2Q4OhO7BQBIHMJNir1Anbt4FDvuOjJ5bGiJY42z3TXdyyAxQLyUX1 BHIshakJZb+wVV15Nzm+1nw9KtkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRRpAIU qHGLoxtbe/ejzr+qi7c3+jAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjE4NS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rc8wDQYJKoZIhvcNAQELBQADggEBAIpDS+3PAeAz1HKk2lkfY3/Gg+apUCww/hxL XNlHmIPNAjEQQ41N/LvAz6HEgsti6KkdQEGPxtoHSEguZsTf4ZflP21ith5USELt NWVytNDROHIrxi9vGi38Mwi6cE48+HGDtILIph8gV/5fH9SCFF9qqnu+t7mY/8YU 232VF/n8N05Gh0qDk7F6nm8flY+34MyrhW/mTUtvhPE9w9BOIVZ8AHKUqS4Tjj11 kz3Iri4nWtJgXU7OkvFBPs28X5pBm1GePutHtl7jQzoq6hmjTyeRWVy7rUd1WidB q9cCw93g3Gb22KJtoAaMx7qIZtCbghYKT6OW5WqgFBdFiAP2CRY= -----END CERTIFICATE-----Generated at Sat Mar 28 11:43:06 2026 by rpki-client